Re: RSA not an easy crack

To: DSC Siltec <dscpubl@siltec.lt>
Cc: debian-security@lists.debian.org
Subject: Re: RSA not an easy crack
From: Michael Robinson <robinson@netrinsics.com>
Date: Fri, 26 Apr 2002 18:55:18 +0800
Message-id: <[🔎] 20020426105517.GB14481@netrinsics.com>
Mail-followup-to: DSC Siltec <dscpubl@siltec.lt>, debian-security@lists.debian.org
In-reply-to: <[🔎] 3CC91B58.F7633E3A@siltec.lt>
References: <[🔎] 3CC91B58.F7633E3A@siltec.lt>

On Fri, Apr 26, 2002 at 11:18:16AM +0200, DSC Siltec wrote:
> Specifically, I think that if you have the public key, and the 
> encrypted data, and know (or can guess) what the unencrypted data
> is, then you can quickly deduce the private key.

I forgot to mention: in encryption scenarios with RSA (as opposed to
digital signatures), the "unencrypted data" is a randomly-generated
session key for a symmetric cipher, which is used to encrypt the actual
unencrypted data.  The session key is encrypted with RSA and then
discarded.

Finding the "unencrypted data" in this case is equivalent to either
cracking the session key RNG, or cracking the symmetric cipher, the 
ability to do either of which obviates the need to deduce the RSA
private key in the first place.

    -Michael Robinson

-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: RSA not an easy crack
  - From: Ralf Gerlich <rgerlich@knewcleus.de>

References:
- RSA an easy crack?
  - From: DSC Siltec <dscpubl@siltec.lt>

Prev by Date: Re: RSA not an easy crack
Next by Date: IPtables and Connection Tracking
Previous by thread: Re: RSA not an easy crack
Next by thread: Re: RSA not an easy crack
Index(es):
- Date
- Thread